+ Reply to Thread
Results 1 to 5 of 5
  1. Member 2E151's Avatar
    Join Date
    Mar 2010
    Posts
    81

    Certifications
    S+, CWNA, MCSA, CEH
    #1

    Default Penetration Testing

    What are some good books to start with regarding this subject? I've got my eye towards network intrusion defense and penetration testing but don't know which books to get.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Mar 2007
    Posts
    12,308
    #2
    In no particular order:

    Amazon.com: Build Your Own Security Lab: A Field Guide for Network Testing (9780470179864): Michael Gregg: Books

    Amazon.com: Certified Ethical Hacker Exam Prep (9780789735317): Michael Gregg: Books

    Amazon.com: Penetration Tester's Open Source Toolkit, Vol. 2 (9781597492133): Jeremy Faircloth, Chris Hurley, Jesse Varsalone: Books

    Amazon.com: Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning (9780979958717): Gordon Fyodor Lyon: Books

    Amazon.com: Professional Penetration Testing: Creating and Operating a Formal Hacking Lab (9781597494250): Thomas Wilhelm: Books

    Amazon.com: Hacking Exposed: Network Security Secrets and Solutions, Sixth Edition (9780071613743): Stuart McClure, Joel Scambray, George Kurtz: Books

    Amazon.com: Wireshark Network Analysis: The Official Wireshark Certified Network Analyst Study Guide (978189393999: Laura Chappell, Gerald Combs: Books

    Amazon.com: The TCP/IP Guide: A Comprehensive, Illustrated Internet Protocols Reference (0689145704709): Charles M. Kozierok: Books

    Amazon.com: Snort IDS and IPS Toolkit (Jay Beale's Open Source Security) (9781597490993): Brian Caswell, Jay Beale, Andrew Baker: Books

    Amazon.com: TCP/IP Illustrated, Vol. 1: The Protocols (Addison-Wesley Professional Computing Series) (9780201633467): W. Richard Stevens: Books

    http://www.amazon.com/Tao-Network-Se...d_bxgy_b_img_c

    http://www.amazon.com/Extrusion-Dete...d_bxgy_b_img_b

    http://www.amazon.com/Security-Monit...7558192&sr=1-1

    I have more, but that should get you started

    Other good resources:

    SecLists.Org Security Mailing List Archive

    Podcasts for Cyber Security Professionals

    The Ethical Hacker Network
    Last edited by dynamik; 02-12-2011 at 11:50 PM.
    Reply With Quote Quote  

  4. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,328

    Certifications
    GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #3
    wow great list dynamic ! thanks for sharing !

    +rep
    Goal: GCFA (DONE), GPEN
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #4
    Excellent. +rep as well. Is this what you used to pass GPEN?
    Last edited by Bl8ckr0uter; 02-13-2011 at 04:25 AM.
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Mar 2007
    Posts
    12,308
    #5
    Quote Originally Posted by Bl8ckr0uter View Post
    Is this what you used to pass GPEN?
    Indirectly, I suppose. I didn't really do any dedicated studying for it; I just went in and took it.

    After glancing at my library, I'd like to also add:

    Amazon.com: Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses (2nd Edition) (9780131481046): Edward Skoudis, Tom Liston: Books

    Amazon.com: Gray Hat Hacking The Ethical Hackers Handbook, 3rd Edition (9780071742559): Allen Harper, Shon Harris, Jonathan Ness, Chris Eagle, Gideon Lenkey, Terron Williams: Books

    Amazon.com: Google Hacking for Penetration Testers (9781597491761): Johnny Long: Books

    If you're looking for some other cool books, check out:

    Amazon.com: Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks (0689145704617): Michal Zalewski: Books

    Amazon.com: Ninja Hacking: Unconventional Penetration Testing Tactics and Techniques (9781597495882): Thomas Wilhelm, Jason Andress: Books

    Amazon.com: Stealing the Network: The Complete Series Collector's Edition, Final Chapter, and DVD (9781597492997): Johnny Long, Ryan Russell, Timothy Mullen: Books

    The last one is particularly interesting because it's fictional with real technology. I got the Kindle edition last week and have thoroughly enjoyed the first couple of chapters.

    This one is in a similar vein, and anyone who has read through the security forums and stickies here will certainly recognize one of the authors: Amazon.com: Chained Exploits: Advanced Hacking Attacks from Start to Finish (9780321498816): Andrew Whitaker, Keatron Evans, Jack B. Voth: Books

    The Hackers Challenge, Hackers Handbook, and Hacking Exposed series have tons of other great books. The challenges really make you think and the used copies can be purchased extremely cheap (i.e. the first one is currently 15 cents and the second is under two dollars; there's no reason not to own these).
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks